Methods for configuring a user apparatus, negotiating with a network entity, and managing a connection, and associated devices

1. A configuration method for configuring a user equipment, which is implemented by the user equipment and comprises: deactivating, for at least one encrypted communication of the user equipment with a remote device via a network, at least one encryption procedure selected by the user equipment and implemented with a first entity of the network involved in routing data exchanged between the user equipment and the remote device during the encrypted communication, with the data being subject to at least one other encryption procedure distinct from the at least one encryption procedure that is deactivated.

2. The configuration method as claimed in claim 1, wherein the deactivating further comprises deactivating a procedure for establishing a tunnel with said the first entity.

3. The configuration method as claimed in claim 1, wherein the at least one other encryption procedure comprises: an encryption procedure implemented with another entity of the network involved in routing the data; and/or an encryption procedure implemented on a network used by the user equipment to exchange the data with the remote device; and/or an encryption procedure implemented with the remote device for exchanging the data.

4. The configuration method as claimed in claim 1, wherein the deactivating is conditional upon reception of a prior authorization originating from a second entity of the network and requested by the user equipment.

5. The configuration method as claimed in claim 4, further comprising, prior to the deactivating, receiving, originating from the second entity of the network, at least one item of information, called deactivation context information, providing at least one indication concerning at least one encryption procedure and/or at least one tunnel establishment procedure that can be deactivated by the user equipment.

6. The configuration method as claimed in claim 5, wherein the at least one item of deactivation context information comprises at least one indication of: at least one entity of the network with which an encryption procedure and/or a tunnel establishment procedure can be deactivated; and/or at least one type of connection during which one of the procedures can be deactivated; and/or at least one network for accessing the network for which one of the procedures can be deactivated.

7. The configuration method as claimed in claim 5, wherein the at least one item of deactivation context information further comprises a security key to be presented by the user equipment to the first entity of the network with which the encryption procedure and/or the tunnel establishment procedure is deactivated.

8. The configuration method as claimed in claim 5, wherein the at least one encryption procedure and/or the tunnel establishment procedure selected by the user equipment is/are selected as a function of the at least one item of deactivation context information received from the second entity.

9. The configuration method as claimed in claim 2, comprising, following the deactivating: requesting establishment of a first connection with or via the first entity, in which the at least one other encryption procedure and/or the procedure for establishing a tunnel is/are deactivated; in the event of a rejection of the first connection by the first entity, requesting establishment of a second connection with or via the first entity, in which the at least one other encryption procedure and/or the procedure for establishing a tunnel is/are activated between the user equipment and the first entity.

10. A negotiation method for negotiating between a second entity of a network and a user equipment of the network, said method comprising: receiving, by the second entity, an authorization request by the user equipment for deactivating, for at least one encrypted communication of the user equipment with a remote device via the network, at least one encryption procedure implemented with at least one first entity of the network involved in routing data exchanged between the user equipment and the remote device during the encrypted communication; in response to the request being accepted, sending, by the second entity, at least one item of information, called deactivation context information, intended for the user equipment, with the at least one item of information providing at least one indication concerning at least one of the at least one encryption procedure that can be deactivated by the user equipment.

11. The negotiation method as claimed in claim 10, further comprising configuring, by the second entity, the first entity in order to process data exchanged between the user equipment and the remote device during the encrypted communication when an encryption procedure with the first entity is deactivated by the user equipment.

12. A management method for managing a connection of a user equipment of a network by a first entity of the network involved in routing data exchanged between the user equipment and a remote device during an encrypted communication, said management method comprising: receiving, from the user equipment, a request to establish a first connection with or via the first entity, in which at least one encryption procedure between the first entity and the user equipment, selected by the user equipment, is deactivated; if the first entity accepts the establishment of the first connection, processing data exchanged, during the encrypted communication, between the user equipment and the remote device via the first connection; otherwise, processing data exchanged, during the encrypted communication, between the user equipment and the remote device via a second connection established by the user equipment with or via the first entity, in which the encryption procedure is activated between the user equipment and the first entity.

13. The method as claimed in claim 4, wherein the second entity is the first entity, or a network control entity capable of configuring the first entity to deactivate the encryption procedure or another network control entity capable of relaying an authorization request from the user equipment to this control entity.

14. The method as claimed in claim 1, comprising using Quick User Datagram Protocol (UDP) Internet Connections (QUIC) protocol during the encrypted communication.

15. A user equipment of a telecommunications network comprising: a processor; and a non-transitory computer readable medium comprising instructions stored thereon which when executed by the processor configure the user equipment to: deactivate, for at least one encrypted communication of the user equipment with a remote device via the network, at least one encryption procedure selected by the user equipment and implemented with a first entity of the network involved in routing data exchanged between the user equipment and the remote device during the encrypted communication, with the data being subject to at least one other encryption procedure distinct from the at least one encryption procedure that is deactivated.

16. The user equipment as claimed in claim 15, wherein the instructions further configure the user equipment to deactivate the at least one encryption procedure following a prior authorization, received from a second entity of the network, requested by the user equipment.

17. The user equipment as claimed in claim 15, wherein the instructions further configure the user equipment to: request establishment of a first connection with or via the first entity in which the encryption procedure is deactivated; in the event of a rejection of the first connection by the first entity, requesting establishment of a second connection with or via the first entity in which the encryption procedure is activated between the user equipment and the first entity.

18. A second entity of a network comprising: a processor; and a non-transitory computer readable medium comprising instructions stored thereon which when executed by the processor configure the second entity to: process a request by a user equipment of the network to authorize deactivation, for at least one encrypted communication of the user equipment with a remote device via the network, of at least one encryption procedure implemented with at least one first entity of the network involved in routing data exchanged between the user equipment and the remote device during the encrypted communication; send, if the request is accepted, at least one item of deactivation context information, intended for the user equipment, with the at least one item of deactivation context information providing at least one indication concerning at least one of the at least one encryption procedure that can be deactivated by the user equipment.

19. A first entity of a network able to be involved in routing data exchanged between a user equipment of the network and a remote device during an encrypted communication, the first entity comprising: a processor; and a non-transitory computer readable medium comprising instructions stored thereon which when executed by the processor configure the first entity to: deactivate, during the encrypted communication, an encryption procedure with the user equipment, selected by the user equipment; and process the data exchanged during the encrypted communication between the user equipment and the remote device, passing through the first entity.

20. The first entity of the network as claimed in claim 19, wherein the instructions further configure the first entity to: process an establishment request, received from the user equipment, to establish a first connection with or via the first entity in which at least one encryption procedure between the first entity and the user equipment, selected by the user equipment, is deactivated during the encrypted communication; if the establishment request is accepted, process the data exchanged, during the encrypted communication, between the user equipment and the remote device via the first connection; and if the establishment request is rejected, process data exchanged, during the encrypted communication, between the user equipment and the remote device via a second connection established by the user equipment in which the encryption procedure is implemented between the user equipment and the first entity.